![]() ![]() ![]() This could be used to elevate privileges. ![]() The cluster's otpCookie was leaked to users with Full Admin role on API endpoint serverGroups and both Cluster Admin and Full Admin on API endpoint engageCluster2. OtpCookie was shown to a user with a Full Admin role on the Cluster Manager's API endpoints serverGroups and engageCluster2. Network ports 91 were unauthenticated RMI service ports hosted by the Analytics Service which could result in privilege escalation. Unauthenticated RMI Service Ports Exposed in Analytics Service. User with Data Reader role could OOM kill the Data Service.Ī user with the Data Reader privilege could kill the Data Service by sending GetKeys requesting a high number of documents, triggering a Out-of-Memory (OOM) error.ĭata readers could DOS the reader threads.Ī user with Data Reader role could lock a Data Service reader thread for a significant time by requesting a high number of keys and potentially lock up all reader threads by issuing the same command on multiple connections. The Query stats endpoint did not implement correct authentication, making it possible to view the stats information. Query Service stats endpoint was accessible without authentication. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |